github
/
Xray_onekey
mirror of https://github.com/wulabing/Xray_onekey
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Xray-1.3.4 

[update] 支持 Oracle Linux 7+ ( amd64 及 aarch64 )
[update] 变更 acme.sh 默认证书签发机构为 letsencrypt
[update] 视觉内容优化
pull/360/head
wulabing 2021-06-18 16:15:03 +08:00
parent 08e7511cb3
commit c72e35479e
No known key found for this signature in database
GPG Key ID: 213391AFDF73AE00
2 changed files with 32 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
README.MD
View File

@ -34,7 +34,7 @@ wget -N --no-check-certificate -q -O install.sh "https://raw.githubusercontent.c
### 注意事项 ### 注意事项
* 如果你不了解脚本中各项设置的具体含义,除域名外,请使用脚本提供的默认值; * 如果你不了解脚本中各项设置的具体含义,除域名外,请使用脚本提供的默认值;
* 使用本脚本需要你拥有 Linux 基础及使用经验,了解计算机网络部分知识,计算机基础操作; * 使用本脚本需要你拥有 Linux 基础及使用经验,了解计算机网络部分知识,计算机基础操作;
* 目前支持 Debian 9+ / Ubuntu 18.04+ / Centos7+ * 目前支持 Debian 9+ / Ubuntu 18.04+ / Centos7+ / Oracle Linux 7+
* 群主仅提供极其有限的支持,如有问题可以询问群友。 * 群主仅提供极其有限的支持,如有问题可以询问群友。
### 鸣谢 ### 鸣谢

52
install.sh
View File

@ -27,7 +27,7 @@ OK="${Green}[OK]${Font}"
ERROR="${Red}[ERROR]${Font}" ERROR="${Red}[ERROR]${Font}"
# 变量 # 变量
shell_version="1.3.3" shell_version="1.3.4"
github_branch="main" github_branch="main"
xray_conf_dir="/usr/local/etc/xray" xray_conf_dir="/usr/local/etc/xray"
website_dir="/www/xray_web/" website_dir="/www/xray_web/"
@ -86,6 +86,10 @@ function system_check() {
print_ok "当前系统为 Centos ${VERSION_ID} ${VERSION}" print_ok "当前系统为 Centos ${VERSION_ID} ${VERSION}"
INS="yum install -y" INS="yum install -y"
wget -N -P /etc/yum.repos.d/ https://raw.githubusercontent.com/wulabing/Xray_onekey/${github_branch}/basic/nginx.repo wget -N -P /etc/yum.repos.d/ https://raw.githubusercontent.com/wulabing/Xray_onekey/${github_branch}/basic/nginx.repo
elif [[ "${ID}" == "ol" ]]; then
print_ok "当前系统为 Oracle Linux ${VERSION_ID} ${VERSION}"
INS="yum install -y"
wget -N -P /etc/yum.repos.d/ https://raw.githubusercontent.com/wulabing/Xray_onekey/${github_branch}/basic/nginx.repo
elif [[ "${ID}" == "debian" && ${VERSION_ID} -ge 9 ]]; then elif [[ "${ID}" == "debian" && ${VERSION_ID} -ge 9 ]]; then
print_ok "当前系统为 Debian ${VERSION_ID} ${VERSION}" print_ok "当前系统为 Debian ${VERSION_ID} ${VERSION}"
INS="apt install -y" INS="apt install -y"
@ -139,14 +143,14 @@ function dependency_install() {
${INS} wget lsof tar ${INS} wget lsof tar
judge "安装 wget lsof tar" judge "安装 wget lsof tar"
if [[ "${ID}" == "centos" ]]; then if [[ "${ID}" == "centos" || "${ID}" == "ol" ]]; then
${INS} crontabs ${INS} crontabs
else else
${INS} cron ${INS} cron
fi fi
judge "安装 crontab" judge "安装 crontab"
if [[ "${ID}" == "centos" ]]; then if [[ "${ID}" == "centos" || "${ID}" == "ol" ]]; then
touch /var/spool/cron/root && chmod 600 /var/spool/cron/root touch /var/spool/cron/root && chmod 600 /var/spool/cron/root
systemctl start crond && systemctl enable crond systemctl start crond && systemctl enable crond
else else
@ -167,7 +171,7 @@ function dependency_install() {
judge "安装/升级 systemd" judge "安装/升级 systemd"
# Nginx 后置 无需编译 不再需要 # Nginx 后置 无需编译 不再需要
# if [[ "${ID}" == "centos" ]]; then # if [[ "${ID}" == "centos" || "${ID}" == "ol" ]]; then
# yum -y groupinstall "Development tools" # yum -y groupinstall "Development tools"
# else # else
# ${INS} build-essential # ${INS} build-essential
@ -176,6 +180,11 @@ function dependency_install() {
if [[ "${ID}" == "centos" ]]; then if [[ "${ID}" == "centos" ]]; then
${INS} pcre pcre-devel zlib-devel epel-release openssl openssl-devel iputils ${INS} pcre pcre-devel zlib-devel epel-release openssl openssl-devel iputils
elif [[ "${ID}" == "ol" ]]; then
${INS} pcre pcre-devel zlib-devel openssl openssl-devel iputils
# Oracle Linux 不同日期版本的 VERSION_ID 比较乱 直接暴力处理
yum-config-manager --enable ol7_developer_EPEL >/dev/null 2>&1
yum-config-manager --enable ol8_developer_EPEL >/dev/null 2>&1
else else
${INS} libpcre3 libpcre3-dev zlib1g-dev openssl libssl-dev iputils-ping ${INS} libpcre3 libpcre3-dev zlib1g-dev openssl libssl-dev iputils-ping
fi fi
@ -199,7 +208,7 @@ function basic_optimization() {
echo '* hard nofile 65536' >>/etc/security/limits.conf echo '* hard nofile 65536' >>/etc/security/limits.conf
# 关闭 Selinux # 关闭 Selinux
if [[ "${ID}" == "centos" ]]; then if [[ "${ID}" == "centos" || "${ID}" == "ol" ]]; then
sed -i 's/^SELINUX=.*/SELINUX=disabled/' /etc/selinux/config sed -i 's/^SELINUX=.*/SELINUX=disabled/' /etc/selinux/config
setenforce 0 setenforce 0
fi fi
@ -370,19 +379,20 @@ function xray_install() {
function ssl_install() { function ssl_install() {
# 使用 Nginx 配合签发 无需安装相关依赖 # 使用 Nginx 配合签发 无需安装相关依赖
# if [[ "${ID}" == "centos" ]]; then # if [[ "${ID}" == "centos" || "${ID}" == "ol" ]]; then
# ${INS} socat nc # ${INS} socat nc
# else # else
# ${INS} socat netcat # ${INS} socat netcat
# fi # fi
# judge "安装 SSL 证书生成脚本依赖" # judge "安装 SSL 证书生成脚本依赖"
read -rp "请输入用于注册域名的邮箱(eg:xxx@gmail.com):" domain_email read -rp "请输入用于注册域名证书的邮箱(eg:xxx@gmail.com 可按照邮箱格式随意填写):" domain_email
curl https://get.acme.sh | sh -s email=$domain_email curl https://get.acme.sh | sh -s email=$domain_email
judge "安装 SSL 证书生成脚本" judge "安装 SSL 证书生成脚本"
} }
function acme() { function acme() {
"$HOME"/.acme.sh/acme.sh --set-default-ca --server letsencrypt
sed -i "6s/^/#/" "$nginx_conf" sed -i "6s/^/#/" "$nginx_conf"
sed -i "6a\\\troot $website_dir;" "$nginx_conf" sed -i "6a\\\troot $website_dir;" "$nginx_conf"
@ -407,7 +417,7 @@ function acme() {
function ssl_judge_and_install() { function ssl_judge_and_install() {
mkdir -p /ssl mkdir -p /ssl >/dev/null 2>&1
if [[ -f "/ssl/xray.key" || -f "/ssl/xray.crt" ]]; then if [[ -f "/ssl/xray.key" || -f "/ssl/xray.crt" ]]; then
print_ok "/ssl 目录下证书文件已存在" print_ok "/ssl 目录下证书文件已存在"
print_ok "是否删除 /ssl 目录下的证书文件 [Y/N]?" print_ok "是否删除 /ssl 目录下的证书文件 [Y/N]?"
@ -443,8 +453,8 @@ function ssl_judge_and_install() {
function generate_certificate() { function generate_certificate() {
signedcert=$(xray tls cert -domain="$local_ip" -name="$local_ip" -org="$local_ip" -expire=87600h) signedcert=$(xray tls cert -domain="$local_ip" -name="$local_ip" -org="$local_ip" -expire=87600h)
echo $signedcert | jq '.certificate[]' | sed 's/\"//g' | tee $cert_dir/self_signed_cert.pem echo $signedcert | jq '.certificate[]' | sed 's/\"//g' | tee $cert_dir/self_signed_cert.pem
echo $signedcert | jq '.key[]' | sed 's/\"//g' > $cert_dir/self_signed_key.pem echo $signedcert | jq '.key[]' | sed 's/\"//g' >$cert_dir/self_signed_key.pem
if openssl x509 -in $cert_dir/self_signed_cert.pem -noout;then if openssl x509 -in $cert_dir/self_signed_cert.pem -noout; then
print_ok "生成自签名证书成功" print_ok "生成自签名证书成功"
else else
print_error "生成自签名证书失败" print_error "生成自签名证书失败"
@ -471,23 +481,23 @@ function xray_uninstall() {
read -r uninstall_nginx read -r uninstall_nginx
case $uninstall_nginx in case $uninstall_nginx in
[yY][eE][sS] | [yY]) [yY][eE][sS] | [yY])
if [[ "${ID}" == "centos" ]]; then if [[ "${ID}" == "centos" || "${ID}" == "ol" ]]; then
yum remove nginx -y yum remove nginx -y
rm -rf /etc/nginx rm -rf /etc/nginx
else else
apt purge nginx -y apt purge nginx -y
fi fi
;; ;;
*) ;; *) ;;
esac esac
print_ok "是否卸载acme.sh [Y/N]?" print_ok "是否卸载acme.sh [Y/N]?"
read -r uninstall_acme read -r uninstall_acme
case $uninstall_acme in case $uninstall_acme in
[yY][eE][sS] | [yY]) [yY][eE][sS] | [yY])
/root/.acme.sh/acme.sh --uninstall /root/.acme.sh/acme.sh --uninstall
rm -rf /root/.acme.sh rm -rf /root/.acme.sh
rm -rf /ssl/ rm -rf /ssl/
;; ;;
*) ;; *) ;;
esac esac
print_ok "卸载完成" print_ok "卸载完成"